virus logo Intrusion Prevention

MS.Windows.Intel.Indeo.Codec.Parsing.Heap.Overflow

description-logoDescription

This indicates an attack attempt against a heap overflow vulnerability in
Microsoft Windows Intel Indeo Codec.
The vulnerability is caused by an error when the vulnerable library handles
a malicious video file. It allows a remote attacker to execute arbitrary code via sending a crafted AVI file.

affected-products-logoAffected Products

Microsoft Windows 2000 Service Pack 4
Windows XP Service Pack 2 and Windows XP Service Pack 3
Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP2 for Itanium-based Systems

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Upgrade to the latest version, available from the vendor website.
http://www.microsoft.com/technet/security/advisory/954157.mspx

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2020-12-02 16.972

References

http://www.zerodayinitiative.com/advisories/ZDI-09-089/
ID 18026
Created Dec 29, 2009
Updated Nov 15, 2021
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID
Default Action drop
Active
Affected OS Windows
Affected App MediaPlayer